![]() The app will give the account a name and an icon - usually the email address you've associated with the account, but you can change that to something more memorable. You might then have to confirm it with the website by typing in the code the app then generates. This will open your camera (you might have to grant the app permission), and when you point it at the QR code, the app will scan that and add that website to your app. The website will show you a QR code: this is a machine-readable representation of the key it wants to share with you. Then in your authenticator app, tap on Add Account (our screengrabs are from Authy, but most apps are broadly the same). Once you're in the section of your account where you can add a 2FA method, choose the option for an authenticator app (sometimes it specifies a particular vendor's app but you might find it will work anyway with another one). You can see which websites and services support 2FA on this website. Then go to any of your online accounts that supports 2FA and look in the settings for where to add 2FA, then choose the option to use an authenticator app. How do I set up an authenticator app?ĭownload the app of your choice to your iOS or Android device and install it on to your phone. They all do more or less the same thing, and we'd recommend choosing one from a big, familiar name. We like Authy for reasons we'll discuss shortly. Google and Microsoft both have their own apps, as does security company Sophos game company Blizzard Okta, a provider of enterprise authentication technologies password manager LastPass - there are many to choose from. ![]() There are lots of authenticator apps to choose from in the Google and Apple app stores. The authenticator app generates a code that you then type in to confirm that it's you signing in Sounds great. If the key in the access code matches the one the website holds for you, it knows the right person is trying to sign in. The app generates that code by combining the key the website gave you when you first set it up with the current time. Then when you log in again to that website, it asks you to check your app for a code which it displays for a short time, usually 30 seconds. You scan the code and it saves to the app on your phone When you scan that with the app, the key is then saved to your phone.Ī website generates a key which it shows you as a QR code. The site usually shows you that key in the form of a QR code. When you set up an authenticator app with a website, that site generates a secret key - a random collection of numbers and symbols - which you then save to the app. Tech tips you can trust - get our free Tech newsletter for advice, news, deals and stuff the manuals don’t tell you You can read more about 2FA and why it's a good thing here. How does an authenticator app work?Īuthenticator apps generate a one-time code that you use to confirm that it's you logging in to a website or service they provide the second part of what's called two-factor authentication (2FA). An authenticator app doesn’t rely on your SIM card or the mobile networks. Less likely, but still possible, is what’s called a ‘man-in-the-middle’ attack that intercepts your SMS messages. The most likely is that someone convinces your mobile provider to send them a SIM card for your number, which would mean they could get all your codes and get into your accounts. SMSs are vulnerable to a couple of types of attack. Why is that safer than an SMS text message? Make sure "Receive Notifications for Verification" is selected.We are fans of authenticator apps at Computing: these take over from SMS text messages the job of sending you a one-time code to confirm that it’s you logging in to an account by generating the code securely on your phone. If MFA is enabled/enforced you will be presented with a different login prompt. ![]() Open a browser on your computer and go to sign in to your Office 365 work or school account. Set up MFA with Authenticator App:ĭownload and install Microsoft Authenticator App for your mobile device. If you've previously set up your security info, but you want to make changes, you can follow the steps in the various method-based how-to articles. You'll only see this prompt if you haven’t set up the security info required by your organization. If you do not have a local administrator please email can follow these steps if you're prompted to set up your security info immediately after you sign-in to your work or school account. If you are not sure the account is enabled for MFA please contact your local help desk. Note: Before attempting to configure the Authenticator app your account must be enabled for multi-factor authentication by the organizations administrator.
0 Comments
Leave a Reply. |